{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2015-8104","assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","dateUpdated":"2025-04-23T15:40:54.273Z","dateReserved":"2015-11-09T00:00:00.000Z","datePublished":"2015-11-16T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre","dateUpdated":"2023-10-10T14:06:16.207Z"},"descriptions":[{"lang":"en","value":"The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by triggering many #DB (aka Debug) exceptions, related to svm.c."}],"affected":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}],"references":[{"name":"RHSA-2015:2636","tags":["vendor-advisory"],"url":"http://rhn.redhat.com/errata/RHSA-2015-2636.html"},{"url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html"},{"name":"USN-2841-2","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-2841-2"},{"name":"FEDORA-2015-f150b2a8c8","tags":["vendor-advisory"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172187.html"},{"name":"SUSE-SU-2015:2350","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00031.html"},{"url":"https://kb.juniper.net/JSA10783"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1278496"},{"name":"DSA-3454","tags":["vendor-advisory"],"url":"http://www.debian.org/security/2016/dsa-3454"},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"},{"name":"RHSA-2015:2645","tags":["vendor-advisory"],"url":"http://rhn.redhat.com/errata/RHSA-2015-2645.html"},{"name":"USN-2840-1","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-2840-1"},{"name":"77524","tags":["vdb-entry"],"url":"http://www.securityfocus.com/bid/77524"},{"url":"https://github.com/torvalds/linux/commit/cbdb967af3d54993f5814f1cee0ed311a055377d"},{"name":"openSUSE-SU-2015:2250","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-updates/2015-12/msg00053.html"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html"},{"name":"[oss-security] 20151110 CVE-2015-8104 kernel: kvm: guest to host DoS by triggering an infinite loop in microcode via #DB exception","tags":["mailing-list"],"url":"http://www.openwall.com/lists/oss-security/2015/11/10/5"},{"name":"USN-2843-1","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-2843-1"},{"name":"SUSE-SU-2015:2194","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00005.html"},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html"},{"name":"USN-2844-1","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-2844-1"},{"name":"openSUSE-SU-2015:2232","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-updates/2015-12/msg00039.html"},{"name":"USN-2842-2","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-2842-2"},{"url":"http://xenbits.xen.org/xsa/advisory-156.html"},{"name":"SUSE-SU-2016:0354","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00013.html"},{"name":"USN-2843-2","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-2843-2"},{"name":"FEDORA-2015-668d213dc3","tags":["vendor-advisory"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172300.html"},{"name":"SUSE-SU-2015:2339","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00026.html"},{"name":"SUSE-SU-2015:2108","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00035.html"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html"},{"name":"USN-2842-1","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-2842-1"},{"name":"FEDORA-2015-394835a3f6","tags":["vendor-advisory"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172435.html"},{"name":"DSA-3414","tags":["vendor-advisory"],"url":"http://www.debian.org/security/2015/dsa-3414"},{"url":"http://support.citrix.com/article/CTX202583"},{"name":"1034105","tags":["vdb-entry"],"url":"http://www.securitytracker.com/id/1034105"},{"name":"91787","tags":["vdb-entry"],"url":"http://www.securityfocus.com/bid/91787"},{"name":"SUSE-SU-2016:2074","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html"},{"name":"USN-2841-1","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-2841-1"},{"url":"http://support.citrix.com/article/CTX203879"},{"name":"DSA-3426","tags":["vendor-advisory"],"url":"http://www.debian.org/security/2015/dsa-3426"},{"url":"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cbdb967af3d54993f5814f1cee0ed311a055377d"},{"name":"RHSA-2016:0046","tags":["vendor-advisory"],"url":"http://rhn.redhat.com/errata/RHSA-2016-0046.html"},{"name":"openSUSE-SU-2016:1008","tags":["vendor-advisory"],"url":"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"},{"name":"[oss-security] 20231010 Xen Security Advisory 444 v3 (CVE-2023-34327,CVE-2023-34328) - x86/AMD: Debug Mask handling","tags":["mailing-list"],"url":"http://www.openwall.com/lists/oss-security/2023/10/10/4"}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"n/a"}]}],"datePublic":"2015-11-10T00:00:00.000Z"},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-06T08:13:31.081Z"},"title":"CVE Program Container","references":[{"name":"RHSA-2015:2636","tags":["vendor-advisory","x_transferred"],"url":"http://rhn.redhat.com/errata/RHSA-2015-2636.html"},{"url":"http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html","tags":["x_transferred"]},{"name":"USN-2841-2","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-2841-2"},{"name":"FEDORA-2015-f150b2a8c8","tags":["vendor-advisory","x_transferred"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172187.html"},{"name":"SUSE-SU-2015:2350","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00031.html"},{"url":"https://kb.juniper.net/JSA10783","tags":["x_transferred"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1278496","tags":["x_transferred"]},{"name":"DSA-3454","tags":["vendor-advisory","x_transferred"],"url":"http://www.debian.org/security/2016/dsa-3454"},{"url":"http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html","tags":["x_transferred"]},{"name":"RHSA-2015:2645","tags":["vendor-advisory","x_transferred"],"url":"http://rhn.redhat.com/errata/RHSA-2015-2645.html"},{"name":"USN-2840-1","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-2840-1"},{"name":"77524","tags":["vdb-entry","x_transferred"],"url":"http://www.securityfocus.com/bid/77524"},{"url":"https://github.com/torvalds/linux/commit/cbdb967af3d54993f5814f1cee0ed311a055377d","tags":["x_transferred"]},{"name":"openSUSE-SU-2015:2250","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-updates/2015-12/msg00053.html"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html","tags":["x_transferred"]},{"name":"[oss-security] 20151110 CVE-2015-8104 kernel: kvm: guest to host DoS by triggering an infinite loop in microcode via #DB exception","tags":["mailing-list","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2015/11/10/5"},{"name":"USN-2843-1","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-2843-1"},{"name":"SUSE-SU-2015:2194","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00005.html"},{"url":"http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html","tags":["x_transferred"]},{"name":"USN-2844-1","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-2844-1"},{"name":"openSUSE-SU-2015:2232","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-updates/2015-12/msg00039.html"},{"name":"USN-2842-2","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-2842-2"},{"url":"http://xenbits.xen.org/xsa/advisory-156.html","tags":["x_transferred"]},{"name":"SUSE-SU-2016:0354","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00013.html"},{"name":"USN-2843-2","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-2843-2"},{"name":"FEDORA-2015-668d213dc3","tags":["vendor-advisory","x_transferred"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172300.html"},{"name":"SUSE-SU-2015:2339","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00026.html"},{"name":"SUSE-SU-2015:2108","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00035.html"},{"url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html","tags":["x_transferred"]},{"name":"USN-2842-1","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-2842-1"},{"name":"FEDORA-2015-394835a3f6","tags":["vendor-advisory","x_transferred"],"url":"http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172435.html"},{"name":"DSA-3414","tags":["vendor-advisory","x_transferred"],"url":"http://www.debian.org/security/2015/dsa-3414"},{"url":"http://support.citrix.com/article/CTX202583","tags":["x_transferred"]},{"name":"1034105","tags":["vdb-entry","x_transferred"],"url":"http://www.securitytracker.com/id/1034105"},{"name":"91787","tags":["vdb-entry","x_transferred"],"url":"http://www.securityfocus.com/bid/91787"},{"name":"SUSE-SU-2016:2074","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html"},{"name":"USN-2841-1","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-2841-1"},{"url":"http://support.citrix.com/article/CTX203879","tags":["x_transferred"]},{"name":"DSA-3426","tags":["vendor-advisory","x_transferred"],"url":"http://www.debian.org/security/2015/dsa-3426"},{"url":"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cbdb967af3d54993f5814f1cee0ed311a055377d","tags":["x_transferred"]},{"name":"RHSA-2016:0046","tags":["vendor-advisory","x_transferred"],"url":"http://rhn.redhat.com/errata/RHSA-2016-0046.html"},{"name":"openSUSE-SU-2016:1008","tags":["vendor-advisory","x_transferred"],"url":"http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html"},{"name":"[oss-security] 20231010 Xen Security Advisory 444 v3 (CVE-2023-34327,CVE-2023-34328) - x86/AMD: Debug Mask handling","tags":["mailing-list","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2023/10/10/4"}]},{"metrics":[{"cvssV3_1":{"scope":"CHANGED","version":"3.1","baseScore":10,"attackVector":"NETWORK","baseSeverity":"CRITICAL","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","integrityImpact":"HIGH","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"HIGH","privilegesRequired":"NONE","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2025-04-23T13:47:48.570746Z","id":"CVE-2015-8104","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-04-23T15:40:54.273Z"}}]}}